The proposed project would identify risk levels, standards, guidelines, and best practices that organizations holding PHI/PII can use to help them make risk-of-harm assessments needed to comply with data breach notification requirements. The work would culminate in the publication of a white paper that presents the consensus-based findings and recommendations, a release event at the National Press Club, and a Congressional staff briefing on Capitol Hill.
Over 85 organizations and individuals with expertise in privacy and security already have indicated potential interest in participating in this project. Rick Kam, president and co-founder of ID Experts, would chair the workshop.
The goal is to launch the project as soon as possible in 2011 and to complete the work within a few months. A kick-off meeting of an advisory committee is envisioned to provide organization and guidance for the work. Thereafter, working groups would meet via a series of teleconferences to provide expertise and content for the white paper.
At this time, the partnering organizations are gauging what level of financial support exists to make the project financially viable. Sponsorship opportunities are being offered with associated public recognition and participation benefits.
For more information, contact Jim McCabe, ANSI senior director of consumer relations and IDSP (firstname.lastname@example.org).